CVE-2023-32725
9.6CRITICALThe website configured in the URL widget will receive a session cookie when testing or executing scheduled reports. The received session cookie can then be used to access the frontend as the particula
Опубликовано: 12/18/2023Обновлено: 11/21/2024
Описание
The website configured in the URL widget will receive a session cookie when testing or executing scheduled reports. The received session cookie can then be used to access the frontend as the particular user.
ИИ-АнализНа базе ИИ
Затронутые продукты
zabbixzabbix_server
zabbixzabbix_server
zabbixzabbix_server
7.0.0
zabbixzabbix_server
7.0.0
zabbixzabbix_server
7.0.0
zabbixfrontend
zabbixfrontend
zabbixfrontend
7.0.0
zabbixfrontend
7.0.0
zabbixfrontend
7.0.0
Ссылки
- https://support.zabbix.com/browse/ZBX-23854Vendor Advisory
- https://support.zabbix.com/browse/ZBX-23854Vendor Advisory